Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jetbrains vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-48481
In JetBrains Toolbox App prior to 1.28 a DYLIB injection on macOS was possible
Jetbrains Toolbox
7.5
CVSSv3
CVE-2022-48476
In JetBrains Ktor prior to 2.3.0 path traversal in the `resolveResource` method was possible
Jetbrains Ktor
9.8
CVSSv3
CVE-2022-48477
In JetBrains Hub prior to 2023.1.15725 SSRF protection in Auth Module integration was missing
Jetbrains Hub
3.3
CVSSv3
CVE-2022-48435
In JetBrains PhpStorm prior to 2023.1 source code could be logged in the local idea.log file
Jetbrains Phpstorm
7.5
CVSSv3
CVE-2022-48430
In JetBrains IntelliJ IDEA prior to 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview.
Jetbrains Intellij Idea
7.8
CVSSv3
CVE-2022-48431
In JetBrains IntelliJ IDEA prior to 2023.1 in some cases, Gradle and Maven projects could be imported without the “Trust Project” confirmation.
Jetbrains Intellij Idea
7.5
CVSSv3
CVE-2022-48433
In JetBrains IntelliJ IDEA prior to 2023.1 the NTLM hash could leak through an API method used in the IntelliJ IDEA built-in web server.
Jetbrains Intellij Idea
8.8
CVSSv3
CVE-2022-48432
In JetBrains IntelliJ IDEA prior to 2023.1 the bundled version of Chromium wasn't sandboxed.
Jetbrains Intellij Idea
5.4
CVSSv3
CVE-2022-48428
In JetBrains TeamCity prior to 2022.10.3 stored XSS on the SSH keys page was possible
Jetbrains Teamcity
5.4
CVSSv3
CVE-2022-48427
In JetBrains TeamCity prior to 2022.10.3 stored XSS on “Pending changes” and “Changes” tabs was possible
Jetbrains Teamcity
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »